Security Advisory

CVE-2022-3357

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2022-10-31 00:00:00

Last updated 2025-05-06 20:42:09

Assigner WPScan

State PUBLISHED

Description

The Smart Slider 3 WordPress plugin before 3.5.1.11 unserialises the content of an imported file, which could lead to PHP object injection issues when a user import (intentionally or not) a malicious file, and a suitable gadget chain is present on the site.

← Browse all CVEs View on cve.org ↗